I've been reading RFC8446 for TLS1.3 and an insight hit me like a ton of bricks. While TLS1.3 does a great job of setting up a secure channel between two communicating parties (usually, https or wss endpoints) - the actual record sharing within the channel depends on the same keys. That means when you have an intervening https/wss endpoint, YOUR DATA IS EFFECTIVELY IN THE CLEAR for those intervening endpoints.

This isn't a big deal for centralized servers, you just assume that you trust the endpoints, but that is no longer the case. If you are end user, you have not choice but to trust these intermediary parties.

With emerging protocol schemes like Nostr Wallet Connect (NWC) you are still relying on wss for relay communication, but the actual payloads are encrypted to the corresponding public key of the secret. That means no one but no one other than the intended party can see the records. This is a super-big-deal as far as I am concerned.